DNS forwarder issue appear to be load balancing after update

[Julien]

Hi guys
after updating the opnsense laste day I can't seem to browse to the internet.
I can ping 8.8.8.8 but not www.google.com

when I nslookup domains its does resolve with the ip.
is this a firewall issue?

Can someone please point me to the right directions ?

Thank you so much

[hutiucip]

First thing, check if it's a matter of DNSSEC in Unbound DNS:

1. Disable "Harden DNSSEC data", then check DNS resolving.

(and if not)
2. Disable DNSSEC completely, then check again DNS resolving.

Let us know it it worked.

[Julien]

First thing, check if it's a matter of DNSSEC in Unbound DNS:

1. Disable "Harden DNSSEC data", then check DNS resolving.

(and if not)
2. Disable DNSSEC completely, then check again DNS resolving.

Let us know it it worked.

Thank you for your quick answers.
where can I find those info ? on the LAN ? Services?
thank you

[hutiucip]

where can I find those info ? on the LAN ? Services?
thank you

Harden DNSSEC data: Services -> Unbound DNS -> Advanced

Enable DNSSEC Support: Services -> Unbound DNS -> General

Thank you for your quick answers.

It was only a coincidence, I just logged in for the first time this week, and clicked "Show unread posts since last visit." You're welcome!

[Julien]

Thank you for your answer,
the issue appear to be a loadbalancing issue.
we have a load balancing the idea is tier 1 is the main connection and when tier 1 is down tier 2 takes over.
today was tier 2 down and the all the connections was down.
this configuration has been configure 2 years ago and its been working fine until last dat we updated the firewall

Do we have to applied the DNS rules on each VLAN interface? or on the LAN is enough? on the below configuration steps 5
https://docs.opnsense.org/manual/how-tos/multiwan.html

[Julien]

any suggestions guys here?

below screenshots is the rules of the LAN for the LOADbalancing.
we have created those rules on the LAN.
VLANS 10/2/3/4/5/6 are member of the LAN physical NIC,do we have to create this on each VLANS interface ?
the Loadbalancing is working but when we remove the secondary WAN the internet remain working, but when we remove the WAN1 internet goes down. I remember having this issue 2 years ago and Josschilve has helped.

please see below screenshots shoemhow it does not switch the gateway when the WAN1 is down.

[Julien]

we have decided to go back to Pfsense for this customer as LOADBALANCING is working out of the box.